e001a7a61098059083304add01823f44a3f30edce56bfd04c5b6ef0e000f4a84

General

Target

e001a7a61098059083304add01823f44a3f30edce56bfd04c5b6ef0e000f4a84
Size

19KB
MD5

67061105c2522bdb8eaa8bb579e25dd0
SHA1

2d8b7daa85f9075a8bfa1bd621d8b9602cf46b6a
SHA256

e001a7a61098059083304add01823f44a3f30edce56bfd04c5b6ef0e000f4a84
SHA512

e694c6997a1b2257f9e7cc053510c6665a5c84c77b8cca59303aa1ab8489963392802cd02ecdb4491c8b970736a0101a713645855911670b3e5dd4938b0efd13
SSDEEP

384:E4u6XVNQ6Bu+TT2FqS058Y7Faz3jU3Wcxnv:EJ6XVi6Bu+TTx58MEPbcxv

Score

N/A

Malware Config

Signatures

Files

e001a7a61098059083304add01823f44a3f30edce56bfd04c5b6ef0e000f4a84
.exe windows x86

49f77aeb94899ca30a2a3431e60f0a75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapSize
DeleteFileW
ReadConsoleA
GetStringTypeW
VirtualProtectEx
TlsGetValue
CloseHandle
GetPrivateProfileSectionA
ReadConsoleA
GetLastError
Sleep
GetLogicalDrives
SearchPathA
ReadConsoleA
GetDriveTypeA
LoadLibraryW
GetStartupInfoA
FindAtomW
ReleaseMutex
lstrlenA
PulseEvent

uxtheme

CloseThemeData
GetWindowTheme
GetThemeTextMetrics
IsThemeActive
DrawThemeBackground
CloseThemeData
DrawThemeEdge
GetThemeColor
GetThemeBool
GetThemeTextExtent
OpenThemeData
GetThemeSysSize
SetWindowTheme

gpedit

BrowseForGPO
DllCanUnloadNow
ExportRSoPData
DllGetClassObject

Sections

.text
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 320B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

49f77aeb94899ca30a2a3431e60f0a75

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 784B

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 320B

.rsrc Size: 11KB - Virtual size: 11KB

.import Size: 512B - Virtual size: 289B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 784B

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 320B

.rsrc
Size: 11KB - Virtual size: 11KB

.import
Size: 512B - Virtual size: 289B

.orpc
Size: 512B - Virtual size: 170B